CVE-2023-33122
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-33122 is a newly-discovered vulnerability affecting multiple versions of JT2Go and Teamcenter Visualization applications. The issue stems from an out-of-bounds read vulnerability in the affected software's handling of CGM files. This weakness allows an attacker to read beyond the end of the allocated buffer, potentially resulting in the disclosure of sensitive information. The impacted applications include Teamcenter Visualization V13.2, V13.3, V14.0, V14.1, and V14.2, all versions preceding V14.2.0.3. Users are advised to update their software to the latest secure versions to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Siemens Teamcenter Visualization
- Siemens JT2GO
- Teamcenter
Affected Vendors
- Siemens AG
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions